[Webkit-unassigned] [Bug 15250] REGRESSION: Reproducible crash in Safari when evaluating script in Drosera console
bugzilla-daemon at webkit.org
bugzilla-daemon at webkit.org
Fri Sep 21 03:46:10 PDT 2007
http://bugs.webkit.org/show_bug.cgi?id=15250
------- Comment #1 from mrowe at apple.com 2007-09-21 03:46 PDT -------
-[WebCoreScriptCallFrame evaluateWebScript:] retrieves eval from the global
object, if it exists, and then calls it with a NULL this object. It is trivial
to null-check thisObj inside GlobalFuncImp::callAsFunction in one place, which
resolves the crash, but I'm not sure that it is correct for
-[WebCoreScriptCallFrame evaluteWebScript:] to be passing NULL for thisObj in
the first place. It clearly used to work, so I'll go ahead and prepare a patch
to restore this.
--
Configure bugmail: http://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
More information about the webkit-unassigned
mailing list